$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138382e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3138382e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: s32Asfb0Vk2AoqdXXpuFo/1b1Jpm9sVE9gF86xInAZ8= Subject key identifier: 1D:FE:53:BF:35:7C:E5:1B:04:92:7D:97:40:8F:87:C1:52:EE:22:97 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 6E3B90C52D9EA375D737244EBF86054BD2D3B8EB Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138382e302f32342d3234203d3e203234353334.roa Signing time: Sat 21 Jun 2025 12:00:00 +0000 ROA not before: Sat 21 Jun 2025 11:55:00 +0000 ROA not after: Sat 20 Jun 2026 12:00:00 +0000 asID: 24534 IP address blocks: 58.147.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 11:10:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:3b:90:c5:2d:9e:a3:75:d7:37:24:4e:bf:86:05:4b:d2:d3:b8:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jun 21 11:55:00 2025 GMT Not After : Jun 20 12:00:00 2026 GMT Subject: CN=1DFE53BF357CE51B04927D97408F87C152EE2297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9b:71:be:28:cd:52:5a:9d:38:3b:75:d2:3f: f4:42:a7:1a:6f:89:2f:cd:f7:0a:86:9e:bd:a5:ab: ec:a5:0e:f1:86:69:83:35:36:18:b0:39:28:7a:6c: 80:0f:a8:05:83:ef:2b:63:63:10:c1:e5:e4:0a:c6: 2d:0b:14:a3:3c:09:3f:3e:6c:6f:89:63:bc:ac:c4: 2d:42:5e:51:cb:04:f8:c2:2f:55:42:ad:3c:f8:66: 33:ef:9e:ae:80:80:a4:a4:cf:ca:30:8a:e7:12:ab: 65:1f:d9:7a:0c:9b:5a:0c:66:50:97:da:d4:34:c1: ef:a2:7f:c8:ac:1e:be:e3:0e:f7:bd:db:c9:0a:5a: b1:03:96:52:35:71:22:2c:e4:8c:14:ab:eb:90:60: 77:9f:1c:69:11:78:2c:b3:5d:1a:50:13:c2:c1:92: e4:75:1e:b9:45:31:3d:56:1a:a7:4f:51:34:d9:66: 8b:79:14:80:30:bb:23:5c:3d:6a:88:8b:45:16:49: 46:1e:96:17:d5:b3:f1:f2:48:d1:87:81:27:34:2d: c7:13:c6:6e:47:bb:c9:38:57:aa:eb:01:bf:00:b2: ca:38:28:5b:70:ed:26:5b:98:f8:bd:a4:ad:c0:9a: 2e:b1:09:72:4f:1b:27:cb:ce:12:13:fc:c3:f4:6d: b6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:FE:53:BF:35:7C:E5:1B:04:92:7D:97:40:8F:87:C1:52:EE:22:97 X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138382e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.188.0/24 Signature Algorithm: sha256WithRSAEncryption 57:73:85:dc:43:fb:f8:47:76:6f:6d:3f:b9:fe:01:12:7b:07: 38:d9:2f:98:0b:9e:ef:94:10:11:69:cc:c2:84:9d:58:ca:b1: c4:3d:68:57:98:59:5b:28:27:c5:27:0f:5e:cc:37:27:ea:b4: a2:60:3f:c9:ff:d1:38:a9:19:1e:be:31:02:d6:60:06:1d:d9: 0d:4e:c9:2f:2e:59:bf:de:7f:62:80:6c:bb:6e:63:cc:76:b5: 87:59:b0:e7:b3:f3:ca:e4:0d:45:cd:af:6c:d7:65:d1:02:45: b1:e1:6d:73:6c:d7:4b:06:26:75:a3:07:ef:2a:68:91:e5:1f: 97:be:93:20:da:55:9e:89:a2:1c:b8:b3:ed:e9:f2:c2:e3:1c: 97:ee:02:4d:69:1f:d3:52:0e:64:a7:f2:ad:35:fa:b3:e0:76: f9:83:b6:1f:dd:9c:ce:2d:0e:e0:4e:03:47:a3:c4:6b:ab:78: 19:4c:68:ed:1d:5b:0a:56:57:f4:3c:a5:e6:95:7c:2f:2a:5c: 60:c8:81:c1:b9:ce:18:ff:af:a2:52:f5:12:2f:0d:88:69:e4: 44:b5:19:39:d9:60:96:ee:4c:b3:37:f5:51:7b:6f:86:d9:54: f6:43:6a:3d:cf:c8:c6:30:c2:41:2d:cd:f5:92:0e:0f:eb:f0: 1a:df:e6:4a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbjuQxS2eo3XXNyROv4YFS9LTuOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNTA2MjExMTU1MDBaFw0yNjA2MjAxMjAwMDBaMDMxMTAvBgNV BAMTKDFERkU1M0JGMzU3Q0U1MUIwNDkyN0Q5NzQwOEY4N0MxNTJFRTIyOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfm3G+KM1SWp04O3XSP/RCpxpv iS/N9wqGnr2lq+ylDvGGaYM1NhiwOSh6bIAPqAWD7ytjYxDB5eQKxi0LFKM8CT8+ bG+JY7ysxC1CXlHLBPjCL1VCrTz4ZjPvnq6AgKSkz8owiucSq2Uf2XoMm1oMZlCX 2tQ0we+if8isHr7jDve928kKWrEDllI1cSIs5IwUq+uQYHefHGkReCyzXRpQE8LB kuR1HrlFMT1WGqdPUTTZZot5FIAwuyNcPWqIi0UWSUYelhfVs/HySNGHgSc0LccT xm5Hu8k4V6rrAb8Asso4KFtw7SZbmPi9pK3Ami6xCXJPGyfLzhIT/MP0bbZHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHf5TvzV85RsEkn2XQI+HwVLuIpcwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTvDANBgkqhkiG 9w0BAQsFAAOCAQEAV3OF3EP7+Ed2b20/uf4BEnsHONkvmAue75QQEWnMwoSdWMqx xD1oV5hZWygnxScPXsw3J+q0omA/yf/ROKkZHr4xAtZgBh3ZDU7JLy5Zv95/YoBs u25jzHa1h1mw57PzyuQNRc2vbNdl0QJFseFtc2zXSwYmdaMH7ypokeUfl76TINpV nomiHLiz7enywuMcl+4CTWkf01IOZKfyrTX6s+B2+YO2H92czi0O4E4DR6PEa6t4 GUxo7R1bClZX9Dyl5pV8LypcYMiBwbnOGP+volL1Ei8NiGnkRLUZOdlglu5Mszf1 UXtvhtlU9kNqPc/IxjDCQS3N9ZIOD+vwGt/mSg== -----END CERTIFICATE-----Generated at Tue Jul 1 21:22:41 2025 by rpki-client